$ rpki-client -vvf rpki.apnic.net/member_repository/A91317E5/DB00F802A0FA11EBBC09943AC4F9AE02/53E7583E3D0511EF99169B21C4F9AE02.roa File: 53E7583E3D0511EF99169B21C4F9AE02.roa (raw, json) Hash identifier: qCXzkeKuPVL2AFCLekUycL2ac1PSk1oLXnC7v+nyDIA= Subject key identifier: 7D:71:B4:61:4C:CA:3A:CE:36:4B:D6:DF:20:8C:A5:F9:19:58:AC:BD Certificate issuer: /CN=A91317E5/serialNumber=45258841F7F04FB39D91DA3E3FABB529E8528F49 Certificate serial: 05C6 Authority key identifier: 45:25:88:41:F7:F0:4F:B3:9D:91:DA:3E:3F:AB:B5:29:E8:52:8F:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RSWIQffwT7Odkdo-P6u1KehSj0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91317E5/DB00F802A0FA11EBBC09943AC4F9AE02/53E7583E3D0511EF99169B21C4F9AE02.roa Signing time: Sat 30 Nov 2024 23:02:18 +0000 ROA not before: Sat 30 Nov 2024 23:02:18 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134740 IP address blocks: 103.198.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91317E5/DB00F802A0FA11EBBC09943AC4F9AE02/RSWIQffwT7Odkdo-P6u1KehSj0k.crl rsync://rpki.apnic.net/member_repository/A91317E5/DB00F802A0FA11EBBC09943AC4F9AE02/RSWIQffwT7Odkdo-P6u1KehSj0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RSWIQffwT7Odkdo-P6u1KehSj0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 22:33:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1478 (0x5c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91317E5, serialNumber=45258841F7F04FB39D91DA3E3FABB529E8528F49 Validity Not Before: Nov 30 23:02:18 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674b997a-646e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:70:8f:60:84:19:06:f9:14:a3:9a:81:99:6a: 8b:89:09:a6:23:01:cd:38:d0:aa:f8:a2:03:d1:de: 7c:ce:80:2b:60:e5:a2:a9:b6:06:38:4c:25:bd:85: 3d:8a:b9:26:0d:e3:15:54:85:48:87:1b:bc:01:f9: da:a8:0e:3f:f7:4f:74:ce:30:c7:27:97:21:96:25: 99:2b:1c:b8:76:f9:f6:61:38:3b:df:fe:11:94:35: 97:13:eb:81:1e:4b:0c:08:3e:01:7f:36:f8:7e:36: de:cf:50:73:2d:04:1b:c7:10:da:2b:b7:fc:fc:25: 91:a0:a6:64:c1:f6:f0:ba:f2:39:7c:bd:49:c4:3c: 0e:09:d7:9e:53:c5:0f:e2:37:90:a4:f3:2e:20:71: a4:9c:bc:c1:14:96:5c:23:cd:3f:be:c5:d0:82:9a: 71:d7:e6:8f:97:e5:57:75:75:f8:8c:3a:d4:b2:32: 06:dd:75:b6:a0:f2:b2:77:c2:24:c9:8c:a6:03:c2: e4:cb:1a:3f:47:48:fa:c9:4f:1d:c0:7a:ff:32:a4: 67:f8:83:22:47:95:d2:66:28:e7:bd:34:7c:85:54: 01:2e:a1:f5:9d:7c:fe:27:99:29:88:8c:00:c1:3e: 9a:e0:ca:b5:d9:3a:ed:ea:61:ed:a5:4c:47:ac:d0: 20:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:71:B4:61:4C:CA:3A:CE:36:4B:D6:DF:20:8C:A5:F9:19:58:AC:BD X509v3 Authority Key Identifier: keyid:45:25:88:41:F7:F0:4F:B3:9D:91:DA:3E:3F:AB:B5:29:E8:52:8F:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91317E5/DB00F802A0FA11EBBC09943AC4F9AE02/RSWIQffwT7Odkdo-P6u1KehSj0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RSWIQffwT7Odkdo-P6u1KehSj0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91317E5/DB00F802A0FA11EBBC09943AC4F9AE02/53E7583E3D0511EF99169B21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.252.0/23 Signature Algorithm: sha256WithRSAEncryption 57:1d:7a:32:cb:6b:73:74:76:20:a1:5c:82:41:d5:b9:f8:ed: 68:52:16:37:fc:90:d3:4a:1f:1b:80:2e:00:c2:10:ac:7d:e3: 6b:60:ae:8f:fb:fb:c1:d1:40:b8:0d:f1:d1:23:74:35:6c:e2: 96:52:1f:4a:6a:f4:80:43:54:52:f8:3d:af:b9:5b:7b:af:d1: 98:a1:c9:aa:1a:64:96:06:9f:5f:8a:88:d5:a1:dd:2e:36:22: 5b:57:37:d8:d8:ca:80:ef:01:bc:6d:b4:56:6e:a0:b1:89:8b: 95:2f:f5:86:8d:b2:0f:53:09:97:fc:54:1c:88:4c:45:6a:be: 30:88:3b:aa:09:11:de:0d:b0:1f:05:a3:fb:69:fd:ed:2a:be: 66:dc:3b:a8:6f:7f:fb:02:5d:f3:b3:7e:ec:91:63:3d:66:a0: 10:cb:d2:3e:bb:e8:cf:b4:54:b6:10:e4:1b:fb:f6:9d:f7:49: 7a:69:5d:9d:ef:8f:59:76:66:ed:bc:f4:8f:d6:2b:5c:3a:38: af:0e:c2:21:a0:db:61:65:1a:70:0b:22:e7:be:6e:32:88:85: 3f:b0:ae:b5:af:a8:c6:09:2c:fc:05:7f:ed:36:ed:a5:9c:73: 53:2b:69:a9:a5:0b:9e:62:5c:82:ca:11:81:d0:28:c5:9c:d1: e5:19:fe:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3RTUxMTAvBgNVBAUTKDQ1MjU4ODQxRjdGMDRGQjM5RDkxREEzRTNGQUJCNTI5 RTg1MjhGNDkwHhcNMjQxMTMwMjMwMjE4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiOTk3YS02NDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynCPYIQZBvkUo5qBmWqLiQmmIwHNONCq+KID0d58zoArYOWiqbYGOEwlvYU9 irkmDeMVVIVIhxu8AfnaqA4/9090zjDHJ5chliWZKxy4dvn2YTg73/4RlDWXE+uB HksMCD4Bfzb4fjbez1BzLQQbxxDaK7f8/CWRoKZkwfbwuvI5fL1JxDwOCdeeU8UP 4jeQpPMuIHGknLzBFJZcI80/vsXQgppx1+aPl+VXdXX4jDrUsjIG3XW2oPKyd8Ik yYymA8Lkyxo/R0j6yU8dwHr/MqRn+IMiR5XSZijnvTR8hVQBLqH1nXz+J5kpiIwA wT6a4Mq12Trt6mHtpUxHrNAgBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH1xtGFM yjrONkvW3yCMpfkZWKy9MB8GA1UdIwQYMBaAFEUliEH38E+znZHaPj+rtSnoUo9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTdFNS9EQjAwRjgwMkEw RkExMUVCQkMwOTk0M0FDNEY5QUUwMi9SU1dJUWZmd1Q3T2RrZG8tUDZ1MUtlaFNq MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JTV0lRZmZ3VDdPZGtkby1QNnUxS2VoU2oway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE3RTUvREIwMEY4MDJBMEZBMTFFQkJDMDk5NDNBQzRGOUFFMDIvNTNFNzU4M0Uz RDA1MTFFRjk5MTY5QjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnxvwwDQYJKoZIhvcNAQELBQADggEBAFcdejLLa3N0diCh XIJB1bn47WhSFjf8kNNKHxuALgDCEKx942tgro/7+8HRQLgN8dEjdDVs4pZSH0pq 9IBDVFL4Pa+5W3uv0ZihyaoaZJYGn1+KiNWh3S42IltXN9jYyoDvAbxttFZuoLGJ i5Uv9YaNsg9TCZf8VByITEVqvjCIO6oJEd4NsB8Fo/tp/e0qvmbcO6hvf/sCXfOz fuyRYz1moBDL0j676M+0VLYQ5Bv79p33SXppXZ3vj1l2Zu289I/WK1w6OK8OwiGg 22FlGnALIue+bjKIhT+wrrWvqMYJLPwFf+027aWcc1MraamlC55iXILKEYHQKMWc 0eUZ/ig= -----END CERTIFICATE-----Generated at Sun Apr 13 04:45:40 2025 by rpki-client